$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft File: ySTN5BVFl0tvV4MubGA7zIlm2eA.mft (raw, json) Hash identifier: j6IqhgPbhTJYAp0myRae3dQHX3UxFKfxfqfkIPpPfvs= Subject key identifier: 42:BB:88:52:1F:F0:48:77:07:3D:12:14:89:52:D1:67:33:5C:4C:90 Authority key identifier: C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 Certificate issuer: /CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Certificate serial: 0300 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft Manifest number: 1137 Signing time: Thu 24 Apr 2025 17:44:20 +0000 Manifest this update: Thu 24 Apr 2025 17:44:19 +0000 Manifest next update: Thu 01 May 2025 17:44:19 +0000 Files and hashes: 1: ySTN5BVFl0tvV4MubGA7zIlm2eA.crl (hash: OJrzM1ivrZ5puJrxbmb8xXa0qQ4i7aB7oDEMVp+xZmM=) 2: 2FBEB0B0D5B011EC90A8A031C4F9AE02.roa (hash: dTotqn1MA4iFciet41gKXuxTQQQVUzcSiuTmgAsBCPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:44:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 768 (0x300) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD, serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Validity Not Before: Apr 24 17:44:19 2025 GMT Not After : May 1 17:44:19 2025 GMT Subject: CN=680a7874-9b97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:34:3e:54:d6:ba:3c:51:ab:fa:af:56:85:16: 75:7b:0e:64:1f:ab:ee:30:f0:4a:cc:b0:2f:6f:d2: a0:16:d8:b1:ec:46:19:86:e7:a0:29:b8:40:d0:9c: 8a:7f:21:4a:92:8e:fe:c8:55:b2:34:0c:e3:aa:e8: 81:e9:f1:42:fd:f1:39:73:5d:cd:af:9d:2c:67:2d: 66:88:ce:b7:48:22:c4:3f:19:dd:d4:98:45:81:19: e6:cb:88:45:69:5a:78:04:06:96:3a:d0:23:c6:55: 5f:84:73:e0:06:e5:14:da:c0:dd:aa:26:8a:e2:44: 41:73:29:b0:b1:6d:82:78:16:55:6b:b6:f7:82:e7: 1b:52:9d:20:51:b3:11:3c:7a:0f:06:94:e1:63:d1: a2:bf:fc:4a:34:7b:6e:31:6c:cb:c7:cd:16:d1:0a: 84:3d:a1:75:90:9d:68:3a:9e:01:9c:d6:04:d8:cb: c9:78:3b:bf:89:52:f1:cb:03:da:7f:0a:e4:9f:2a: a1:8f:bf:b9:ba:e8:f6:31:9f:71:5d:12:ea:0d:10: 3f:63:c8:e6:15:6c:6c:b3:96:b2:67:70:36:ca:20: 17:3e:bd:c5:db:d0:81:d4:dd:86:f6:9e:fa:e7:0f: 3b:43:5d:f9:54:8a:4f:92:60:f9:f0:51:7c:98:d6: 31:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:BB:88:52:1F:F0:48:77:07:3D:12:14:89:52:D1:67:33:5C:4C:90 X509v3 Authority Key Identifier: keyid:C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:c2:dc:8b:42:db:e4:4b:8b:0d:f4:b0:4b:e6:a7:80:ab:a5: 62:95:31:62:ec:c8:4c:48:5e:ec:aa:9e:4a:26:b9:99:6c:ea: 61:48:f0:51:c4:85:c0:3e:9c:f4:fc:eb:6a:dd:3b:d2:b8:dc: c2:44:34:2f:53:71:92:53:8a:50:3d:b0:81:59:7c:b6:55:c4: 11:32:03:a3:a4:7f:7f:fd:8b:44:33:88:87:e9:59:a4:cf:7f: 8f:27:34:78:74:07:5a:25:f9:e1:e2:92:7e:70:1c:bb:f0:4f: 74:17:41:d1:47:ce:64:a0:4e:83:01:e5:35:43:e7:a6:c6:0d: 37:21:6e:5f:87:50:75:cb:02:1b:e8:fa:46:16:9b:a9:6e:09: 86:55:a9:92:2c:65:fd:21:3a:b5:ff:ba:06:3e:d1:39:b1:3d: c4:e5:12:ab:4c:79:59:0a:5d:b1:07:bf:b1:c9:60:47:59:05: cb:d7:86:db:28:13:8f:7e:ca:61:48:5f:4e:21:16:c6:70:49: 4b:0b:90:53:8d:02:c9:8b:7a:1b:7f:73:0a:32:44:72:fb:9e: fc:a6:c2:d4:51:64:77:56:ce:0c:cc:b6:a1:c7:c8:26:33:24: 02:5c:d5:7e:e9:e8:ac:60:84:63:99:70:ff:91:e8:af:40:94: 2e:90:f3:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKEM5MjRDREU0MTU0NTk3NEI2RjU3ODMyRTZDNjAzQkND ODk2NkQ5RTAwHhcNMjUwNDI0MTc0NDE5WhcNMjUwNTAxMTc0NDE5WjAYMRYwFAYD VQQDEw02ODBhNzg3NC05Yjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4TQ+VNa6PFGr+q9WhRZ1ew5kH6vuMPBKzLAvb9KgFtix7EYZhuegKbhA0JyK fyFKko7+yFWyNAzjquiB6fFC/fE5c13Nr50sZy1miM63SCLEPxnd1JhFgRnmy4hF aVp4BAaWOtAjxlVfhHPgBuUU2sDdqiaK4kRBcymwsW2CeBZVa7b3gucbUp0gUbMR PHoPBpThY9Giv/xKNHtuMWzLx80W0QqEPaF1kJ1oOp4BnNYE2MvJeDu/iVLxywPa fwrknyqhj7+5uuj2MZ9xXRLqDRA/Y8jmFWxss5ayZ3A2yiAXPr3F29CB1N2G9p76 5w87Q135VIpPkmD58FF8mNYxYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEK7iFIf 8Eh3Bz0SFIlS0WczXEyQMB8GA1UdIwQYMBaAFMkkzeQVRZdLb1eDLmxgO8yJZtng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmwwdHZWNE11YkdBN3pJbG0y ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTVE41QlZGbDB0dlY0TXViR0E3eklsbTJlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkRERC9CNEEyODM2MjlFMUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmww dHZWNE11YkdBN3pJbG0yZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEwtyLQtvkS4sN9LBL5qeAq6VilTFi7MhMSF7sqp5KJrmZbOphSPBR xIXAPpz0/Otq3TvSuNzCRDQvU3GSU4pQPbCBWXy2VcQRMgOjpH9//YtEM4iH6Vmk z3+PJzR4dAdaJfnh4pJ+cBy78E90F0HRR85koE6DAeU1Q+emxg03IW5fh1B1ywIb 6PpGFpupbgmGVamSLGX9ITq1/7oGPtE5sT3E5RKrTHlZCl2xB7+xyWBHWQXL14bb KBOPfsphSF9OIRbGcElLC5BTjQLJi3obf3MKMkRy+578psLUUWR3Vs4MzLahx8gm MyQCXNV+6eisYIRjmXD/keivQJQukPMQ -----END CERTIFICATE-----Generated at Sat Apr 26 04:32:33 2025 by rpki-client